Enterprise Security Assessment > Data and Asset Security > Network Security

Are Baseboard Management Controllers (BMCs) enabled on any servers or other devices?

book reader icon
1 Minute
11/12/2024
facebook logo gray
linkedin logo gray
mail logo gray

Yes. In accordance with current security standards, all default passwords have been changed on any BMCs, and they are configured on network address ranges reserved specifically for BMCs and no other devices.

BMC firmware updates are monitored and applied regularly during the first available maintenance window.

Last update 5 days ago

Is a Password Policy in place?

We utilize passwords in accordance with all relevant security standards and our comprehensive password policy.

Are server security configuration standards documented and based on external industry or vendor guidance?

Our server security configuration standards use established frameworks, are documented and based on vendor recommendations and common industry standards.

Are server security configuration reviews performed regularly to validate compliance with documented standards?

Yes. Server security configurations are regularly reviewed and updated when necessary to fully ensure compliance with all documented security standards.

Are all servers configured according to security standards as part of the build process?

Our servers are configured in accordance with all common security standards and are regularly patched and updated. Security standards are documented.

Are all unnecessary/unused services uninstalled or disabled on all servers?

Yes. The necessity of all services on our servers is evaluated regularly and all services deemed unnecessary are shut down.